HIPAA Data Breaches
MMG Fusion Breach Affecting 15 Million Patients Results in HIPAA Settlement
HHS Office for Civil Rights announced a settlement with MMG Fusion, LLC, a Maryland-based dental software company, following a data breach that affected approximately 15 million individuals — one of the largest breaches in HIPAA enforcement history. MMG Fusion agreed to pay $10,000 and implement a corrective action plan to resolve potential violations of the…
Read MoreChildren’s Hospital Colorado Pays Over $500,000 for MFA Failures Leading to HIPAA Breach
HHS Office for Civil Rights reached a settlement with Children’s Hospital Colorado following a data breach that exposed the protected health information of thousands of patients. The breach was tied directly to failures in implementing multi-factor authentication (MFA) across critical systems, resulting in a penalty exceeding $500,000. OCR’s investigation determined that the hospital had not…
Read MoreTennessee diagnostic medical imaging services company pays $3,000,000 to settle breach
Touchstone Medical Imaging (“Touchstone”) has agreed to pay $3,000,000 to the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS), and to adopt a corrective action plan to settle potential violations of the Health Insurance Portability and Accountability Act (HIPAA) Security and Breach Notification Rules. Touchstone, based in Franklin,…
Read MorePhiladelphia Business Associate Agrees to $650,000 OCR Settlement
On June 24, 2016, the Department of Health and Human Services’ Office for Civil Rights (OCR) published details of a resolution agreement that was reached with Catholic Health Care Services of the Archdiocese of Philadelphia (CHCS). CHCS has agreed to settle alleged HIPAA violations with the OCR and has agreed to implement a Corrective Action…
Read MoreAspen Hospital Sued for HIPAA Breach by Former Employee
A healthcare IT worker formerly employed by Aspen Hospital is suing the hospital and five of its employees for an alleged HIPAA breach after it was disclosed he had contracted HIV. The former employee, only identified as John Doe in the suit, was also a patient at the hospital. His attorneys, Mari Newman, Darold Killmer…
Read More4000 Michigan Chiropractic Patients Notified of Potential Data Breach
4,082 patients of Complete Chiropractic & Bodywork Therapies (CCBT) of Ann Arbor, MI., have been notified of a potential breach of protected health information after malware was discovered on one of the company’s servers. The malware was discovered on March 19, 2016., after the server malfunctioned. The malfunctioning of the server triggering CCBT’s security protocols…
Read MoreFormer CVS Employee Steals PHI of 54K Molina Healthcare Members
A former employee of CVS, an Over-the-Counter benefits vendor contracted by Molina Healthcare, has been discovered to have stolen the Protected Health Information (PHI) of 54,203 current and former members of Molina Medicare Options Plus HMO SNP. The unnamed employee emailed data from a work computer to a personal email account on March 26, 2015,…
Read MorePotential PHI Disclosure After Employee Works from Home with Hospital Data
The William W. Backus Hospital has sent breach notification letters to 360 individuals alerting them that their Protected Health Information (PHI) may have been viewed by an unauthorized individual. The information potentially viewed includes patient names, medical record numbers, dates of treatment, and information relating to the diagnoses and treatment provided to patients. The hospital…
Read MoreHospital Employee Steals Protected Patient Data to Commit Identity Theft
Hospital Employee Steals Protected Patient Data to Commit Identity Theft A former employee of the Bethesda Hospital in Boynton Beach, Fla, has been arrested and charged with identity theft; after fraudulently obtaining IDs and credit int he names of 20 individuals, most of which had been patients of the Boynton Beach hospital in which she…
Read MoreNorth East Medical Services HIPAA Breach Reported: 69,246 Affected
A North East Medical Services HIPAA breach has been reported which exposed the Protected Health Information of almost 70,000 patients after an unencrypted laptop was stolen from the car of a NEMS employee’s car. According to a breach notice sent to the California Department of Public Health, the incident occurred on July 11, 2015. The…
Read More